A report from At-Bay reveals that organizations using Cisco and Citrix VPNs are nearly seven times more likely to experience ransomware attacks compared to those without VPNs. The findings suggest that the complexity of these devices can lead to security vulnerabilities, emphasizing the need for companies to consider cloud-based solutions.

Ingram Micro is experiencing significant outages due to a ransomware attack attributed to the SafePay group, which has compromised internal systems and led to the shutdown of their online services. The attack is believed to have been initiated through compromised credentials used to access the company's GlobalProtect VPN, though Ingram Micro has not publicly confirmed the full extent of the attack. As of now, the company is working to restore affected systems and has begun processing certain orders again.

SonicWall is investigating a surge of ransomware incidents affecting its Gen 7 firewalls, linked to a potential zero-day vulnerability in its SSL VPN services. The company is collaborating with third-party threat research teams to assess the situation and has advised customers to disable SSL VPN services where feasible and implement security measures to mitigate risks. Previous attacks have exploited similar vulnerabilities, highlighting ongoing concerns about the security of SonicWall's products.